Yubico Forum

Re: Prevent root password sharing

2009-08-27T09:51:40+01:00

You can configure su or sudo by placing appropriate rules in /etc/pam.d/su or /etc/pam.d/sudo. (This is in Debian or Ubuntu. Configuration files might be different in other distros.)

Requiring passwd+YubiKey for some users while allowing password-only login on others is a different matter, and not a trivial one. I have just written about these kind of setups here, but I'm not sure yet if it will work out.

Statistics: Posted by msvilp — Thu Aug 27, 2009 9:51 am

Prevent root password sharing

2009-08-26T23:52:26+01:00

Hi All,

I would like to use yubikey in my work environment to prevent the root password sharing. I have successfully configured sshd to accept password+yubikey. Is it possible to allow passwd+yubikey to certain authorized users and rest can ssh login with their passwords?

Also, has anyone configured PAM for su and sudo with yubikey so that if anyone does a "su -" should also use pawwd+yubikey.

Thanks.

Chet

Statistics: Posted by xchet — Wed Aug 26, 2009 11:52 pm